[strongSwan] stateless high availability
Martin Willi
martin at strongswan.org
Fri Feb 27 10:29:18 CET 2015
Hi,
> Is there a way to configure a device to connect to a gateway [ eg
> 10.1.1.254]. If that gateway fails [ detected via DPD],it would
> connect to 10.1.1.253 [ his backup gateway]?
No, specifying fallback addresses is currently not implemented in
strongSwan.
> I've tried with right=10.1.1.254,10.1.1.253
Specifying multiple addresses is supported, but it currently works only
for matching the endpoints of connection attempts to configurations.
> it does not seems to work [ it expects an identity
> 10.1.1.254,10.1.1.253 on the remote.
rightid defaults to right, so if you have more than a single address,
you should define rightid explicitly. But as said, having multiple
addresses in right currently does not what you intend.
Regards
Martin
More information about the Users
mailing list